Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CA908AAA019B11EF89A609FC007001B1.roa
File: CA908AAA019B11EF89A609FC007001B1.roa (raw, json)
Hash identifier: uky7u4u5+UiCu0Vtgt4Yilw/EuzPgLz0k2gBN8Lo6Pk=
Subject key identifier: 24:C4:07:04:D4:84:8A:BE:32:23:EF:EA:A3:46:7A:EF:51:46:7C:12
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 15F9
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CA908AAA019B11EF89A609FC007001B1.roa
Signing time: Tue 23 Apr 2024 18:03:30 +0000
ROA not before: Tue 23 Apr 2024 18:03:27 +0000
ROA not after: Sat 25 Apr 2026 18:03:27 +0000
asID: 200017
IP address blocks: 154.16.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5625 (0x15f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 23 18:03:27 2024 GMT
Not After : Apr 25 18:03:27 2026 GMT
Subject: CN=6627f7f2-d90b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:91:6f:85:aa:21:ef:3e:38:44:1b:99:55:79:
52:3b:bd:3d:39:77:62:1d:1e:cc:97:96:48:ff:16:
8c:5b:01:9c:e4:42:40:82:ee:90:ad:98:d1:b9:44:
2e:07:f3:83:25:43:a5:a6:c2:a4:59:0f:e8:77:38:
89:dc:ae:49:56:02:61:c5:db:80:47:2d:be:71:f8:
d7:a8:de:9e:b9:dd:84:7a:f7:0b:c2:ad:a7:fc:24:
44:97:44:23:98:58:aa:0e:b6:da:f6:b7:1e:5a:96:
6a:28:f8:b5:f6:ad:ad:16:89:fc:2c:dd:4b:b6:04:
3c:4f:72:76:72:d0:d8:e7:eb:93:ea:dc:21:59:48:
39:b0:af:bd:77:46:3c:f7:19:28:be:00:01:ef:e4:
0c:18:22:09:5e:30:56:6b:9e:2e:cf:32:3a:60:b9:
cc:89:d5:e3:6d:38:0b:dc:b8:c0:e1:e7:17:cd:9d:
17:08:08:66:a7:5a:91:e0:5e:d5:62:2f:58:d9:03:
be:9e:f0:d7:06:46:6b:73:ee:af:30:19:79:cd:b6:
67:51:d8:a8:44:d3:cc:da:1d:d5:20:20:f7:43:ad:
b8:7c:97:2f:86:af:8c:05:c1:69:e4:b1:0a:f6:4b:
af:fc:b8:d1:b0:af:68:ec:49:b8:2d:ec:0f:75:b2:
fe:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C4:07:04:D4:84:8A:BE:32:23:EF:EA:A3:46:7A:EF:51:46:7C:12
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CA908AAA019B11EF89A609FC007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.152.0/24
Signature Algorithm: sha256WithRSAEncryption
63:0c:35:ae:96:8f:66:36:b3:33:69:1f:cf:78:1f:2a:55:34:
07:c3:56:17:4a:c8:ff:7e:cc:90:42:14:29:cb:f2:f8:9a:3e:
1f:5c:5a:1b:54:cd:28:62:d8:09:41:a5:af:25:15:40:70:43:
37:cf:46:90:02:5d:3b:66:03:e0:3a:9a:4c:cb:50:35:e6:1f:
19:ed:33:0c:a8:04:9d:b4:94:c7:a6:04:93:f7:43:96:b3:b9:
4d:71:25:0b:a9:6d:5a:b6:52:ff:a9:22:22:45:69:47:00:38:
7b:b2:7e:d2:e8:97:08:09:ec:41:d9:c4:2c:f2:95:a9:72:2c:
27:11:8e:c7:79:56:f5:a9:51:42:da:d5:be:6a:49:bd:2c:ef:
03:47:d7:ce:4b:e7:e3:aa:97:a7:7c:06:97:80:db:09:35:e6:
c5:a7:78:35:c7:d7:3a:bf:a8:0c:f1:f0:4c:dd:e6:d0:51:4f:
3d:ff:89:06:22:d8:34:b6:03:dc:2a:dc:8d:61:90:1b:5e:cb:
7b:ac:75:21:ff:5b:8b:46:b9:b9:ea:b0:5f:cb:57:ef:f7:da:
1e:62:69:58:ac:09:15:84:fe:97:4a:50:39:aa:2b:0d:57:84:
72:17:1c:42:b3:cb:21:49:b2:b3:31:d5:2c:0d:4c:66:27:d9:
68:15:0e:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:46:36 2024 by rpki-client on console-fra.rpki-client.org